Security Advisory

CVE-2020-25843

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-31 07:45:46

Last updated 2024-09-16 18:28:28

Assigner twcert

State PUBLISHED

Description

NHIServiSignAdapter fails to verify the length of digital credential files’ path which leads to a heap overflow loophole. Remote attackers can use the leak to execute code without privilege.

← Browse all CVEs View on cve.org ↗